Everything you need to know
What are we changing?
Conferma will be disabling TLS 1.0 and TLS 1.1 in order to comply with the new PCI DSS requirements and to provide the highest levels of security.
When will the change happen?
Disabling TLS 1.0 and 1.1 on Certification: this was completed on 5 December 2017
Disabling TLS 1.0 and 1.1 on Live:
For Web connections – Change Complete
For FTPS connections – Change Complete
For API connections – Wednesday 27th June
What do you need to do to upgrade?
If you are an API user:
2. Upgrade your test platforms
You can test against Conferma's certification platforms already. These are only running TLS 1.2.
Carry out any necessary tests and changes to ensure you are ready for the Live upgrade on the 15th May 2018.
If you are an FTPS User:
1. Check you FTPS server and connections
Make sure you are running the manufacturer’s latest versions and confirm that they can default to TLS 1.2
2. Upgrade your test platforms
Conferma have already upgraded test platforms, so you can test now. These are only running TLS 1.2.
If you are a web user:
1. Ensure you are running the latest version of your browser of choice
You will need to speak to your own IT department to ensure this is the case. You can test now to check if your browser supports TLS 1.2 by browsing to Conferma’s Certification platforms
What happens if you don’t make the changes?
If you do not make the changes ahead of the specified dates above, you will no longer be able to access Conferma if you continue to use any lower versions of TLS.
Why are we making changes?
All payment systems must upgrade to Transport Layer Security (TLS) TLS 1.2 - and disable early TLS 1.0 and TLS 1.1 by 2018, due to new requirements from the Payment Card Industry Data Security Standard (PCI DSS).
Click here to find out more
Still not making sense?
Please ensure the instructions above reach the technical contact for your organisation. They would be best placed to perform the required changes.